messagestream

package module
v0.7.0 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: May 31, 2025 License: MIT Imports: 13 Imported by: 0

README

MessageStream

Purpose

A simple structured communication layer supporting applying additional security through RSA encryption of Messages and signing Messages. The protocol also comes with a ready made server and client and supports proxying Messages through multiple servers across networks.

Both sides create a Message Stream which negotiates an additional security layer by exchanging RSA public keys. All messages carry a nonce to protect against replay attacks. Messages are encrypted with the recipient's public key so only the other side of the Message Stream can read it. Sent Messages are also signed by the sender and verified by the receiver. Messages are given a Message Type and can easily be used in switch statements on the receiving end of the Message Stream. Either end can also create callbacks for different Message Types to simplify the process of reacting to specific Message Types. Messages also contain additional optional metadata for more flexibility. e.g. I want to add a creation timestamp to my message, but I don't want to add that as a property to the struct being sent as the Message payload.

Usage

Getting Started
Installation
go get github.com/EddisonKing/message-stream
Import & Alias
import (
  ms "github.com/EddisonKing/message-stream"
)

Because of the length of the package name, it is easier to alias it as something simple, like ms. The following examples assume this alias has been used, otherwise, reference it as messagestream.

Definition of New Message Type
var TestMessage = ms.MessageType("test")

Message Types are strings that make it easier to differentiate Messages as they are received at the Message Stream's Receiver by the consumer of the Messages. A Message Type allows the consumer to know what Type to ExtractPayload as. Fingers crossed for improved generics in future versions of Go so that this part of the API can be improved drastically.

Creating and running a Message Stream Server
listener, err := ms.Listen("0.0.0.0:1337", nil)
defer listener.Close()

stream, err := listener.Accept()

To run a Message Stream Server, call Listen passing in an address to listen on and an optional MessageStreamOptions. It behaves very similar to a net.Listener since under the hood, it is creating a TCP listener and wrapping incoming connections in a Message Stream.

Passing nil as opts when calling Listen or Dial (or even constructing the Message Stream directly with New or NewFrom) will result in the Message Stream using the default configuration. In the default configuration, a private and public RSA key of 2048 bits will be generated and used.

Connecting to a Message Stream Server as a Client
stream, err := ms.Dial("127.0.0.1:1337", nil)
defer stream.Close()

This takes an address string for an existing Message Stream Server and tries to connect to it. If successful, it will return back a pointer to a Message Stream that can be used to interact with the server. Both client and server must use encryption, or neither should, similar to TLS.

Creating a new Message Stream from a ReadWriter, Reader or Writer
opts := ms.NewMessageStreamOptions()

stream, err := ms.New(rw, opts)
// OR
stream, err := ms.NewFrom(r, w, opts)

Another way to create a MessageStream is to call New and pass in anything that implements io.ReadWriter, however it is also possible to call NewFrom which takes an io.Reader and io.Writer.

Message Streams support the Close operation which does multiple things, including calling close on the underlying channels for receiving Messages and internally generated errors, as well as closing the io.Reader and io.Writer.

The io.ReaderWriter, io.Reader and io.Writer parts given to a Message Stream should not be used by the caller after the MessageStream struct has been created. Writes and reads from the underlying parts could result in undefined behaviour.

Note: For added security when intending to use a net.Conn to create a Message Stream, it is best to use crypto/tls (from https://pkg.go.dev/crypto/tls), and wrap the connection in TLS, ideally with a valid Certificate, although self-signed in a controlled environment is good too.

Receiving Messages
for msg := range stream.Receiver() {
  switch msg.Type {
    case TestMessage:
      payload, metadata, err := ms.Unwrap[string](msg)
      // Do something with the msg
      // ...
  }
}

Receiver() will return a read-only channel of *Message. Any Messages received by the Message Stream will be available here, except when calling On() or Read(). For example:

onlyChatMessages := stream.Read(ChatMessage)
// OR
stream.On(ADifferentMessage, func(msg *ms.Message) {
  // Do something with `msg` (type ADifferentMessage) when called
})

When using On() or Read(), Receiver() will no longer have those Message types in order to prevent erroneous duplicate Message handling.

Additionally, OnOne() and ReadOne() provide single-use versions of On() and Read() that do not prevent re-delivery at the Receiver(). It is up to the consumer to work out whether re-processing is needed or working out if the Message has already been consumed by ReadOne() or the callback of OnOne() has been fired.

Sending Messages
err := stream.SendMessage(TestMessage, map[string]any {
  "creation_time": time.Now().UTC(),
}, "hello")

Messages contain both a payload and metadata. The payload is any type that can be serialised using encoding/json. Similary, metadata is map[string]any where the any type must also be serialisable. Whereas payload is the actual message to be sent, metadata is a way to apply additional information that might not be directly related to the message. For example, a timestamp of when the Message was created, while not directly relevent to the payload, might be useful to the recipient.

This will error if unable to serialize either the metadata or payload. A nil can be passed to both the metadata and payload field, effectively being an empty Message that can be treated by the receiver like an event.

Logging
// Create slog logger
logger := slog.New(slog.NewTextHandler(os.Stdout, &slog.HandlerOptions{
	Level: slog.LevelDebug,
}))

// Create instance of default Message Stream options and set the logger
opts := ms.NewMessageStreamOptions()
opts.Logger = logger

// Then pass opts to Message Stream

The Message Stream library surfaces a MessageStreamOptions struct allowing for a slog.Logger to be passed in for logging. No payloads are ever logged for security reasons. Setting DeepLogging to true will forward the logger on to the underlying on-the-wire library which will produce a significant amount of debugging logging raw bytes being transferred and transformed before and after reading/writing. No payloads are logged for security reasons.

Proxying
err := stream.SendMessage(TestMessage, nil, nil, "172.16.0.1:8080", "192.168.10.1:4444")

Message Streams support a type of proxying whereby appending strings to the variadic SendMessage function that represent network addresses will tell the receiving Message Stream endpoint to forward on the Message to that endpoint. The last address in the list is the recipient of the Message. Message replies will flow through back to the sender of the original Message. This proxying creates a subsequent transient Message Stream upon a TCP connection to the proxy, which means the proxy host must be running a Message Stream Server or have wrapped their own Message Stream around a network connection.

By default, Message Streams do not allow this proxying and an error will be thrown if the Message Stream wasn't created with it's MessageStreamOptions.AllowProxying set to true. This is because the host of a proxy in a list could intercept and modify the Messages. Unless you run or trust the proxies, or implement additional security surround Message payloads, you should avoid allowing proxying.

Examples

Have a look at the chat client/server implementation using Message Streams in the ./examples folder. Keep in mind that a real implementation would need more work to handle network resiliency such as notifying of a disconnect, etc.

Changelog

v0.7.0
  • Improved functionality for receiving Messages:
    • On(MessageType, func(*Message)) - Specifies a callback to action specific Message Types
    • OnOne(MessageType, func(*Message)) - Specifies a callback that will only be fired once for a specific Message Type
    • Read(MessageType) - Returns a read-only channel that will only receive Messages of a specific Message Type
    • ReadOne(MessageType) - Will return a pointer to the next Message of the specified Message Type
  • Improved logging
  • Started writing this changelog. Before this... even I don't remember what I was changing each version. Stuff? Probably?

Documentation

Index

Constants

This section is empty.

Variables

View Source 
var (
	ErrFailedToSendPublicKey      = errors.New("failed to send public key during public key exchange")
	ErrFailedToReceivePublicKey   = errors.New("failed to receive public key during public key exchange")
	ErrProxyAddressUnresolvable   = errors.New("failed to resolve proxy address")
	ErrFailedToUnwrapProxyMessage = errors.New("failed to unwrap proxied Message")
	ErrMessageStreamClosed        = errors.New("message Stream is closed")
	ErrMissingPublicKey           = errors.New("missing public key")
	ErrMissingPrivateKey          = errors.New("missing private key")
	ErrProxyingNotAllowed         = errors.New("proxying is not allowed")
	ErrFailedToProxyMessage       = errors.New("failed to proxy Message")
	ErrFailedToProxyReplyMessage  = errors.New("failed to return Message from proxy")
)
View Source 
var ErrListenerClosed = errors.New("listener already closed")

Functions

func GenerateRSAKeyPair added in v0.5.0 

func GenerateRSAKeyPair() (*rsa.PrivateKey, *rsa.PublicKey)

Convenience method to generate an RSA Private and Public key pair with a bit size of 2048.

If the default options, such as 2048 bit key size is suitable, this method is ok to use. But it is recommended, for security, to create the RSA keys on your own and take ownership of how they are built.

func Unwrap added in v0.4.0 

func Unwrap[P any](msg *Message) (P, map[string]any, error)

Unwraps the Message into it's parts, the payload and the metadata. Returns the payload as the type P. For example, if a struct called Payload is sent, then Unwrap[Payload](someMessage) will return an instance of the Payload struct that was sent. Attempts to deserialize into an incorrect type will result in an error.

Types

type Message 

type Message struct {
	Type     MessageType
	Metadata map[string]any
	Payload  []byte
	Proxies  []string
}

Represents a Message that can be sent on a Message Stream. Most likely, you want NewMessage() so you can encode the metadata and payload properly.

type MessageStream 

type MessageStream struct {
	// contains filtered or unexported fields
}

Message Stream supporting Send and Receive operations.

func Dial added in v0.6.0 

func Dial(addr string, opts *MessageStreamOptions) (*MessageStream, error)

Dials a Message Stream endpoint and creates a Message Stream from the connection using the options provided

func New 

func New(rw io.ReadWriter, opts *MessageStreamOptions) (*MessageStream, error)

Create a new Message Stream from anything that implements io.ReadWriter.

func NewFrom 

func NewFrom(sender io.Writer, receiver io.Reader, opts *MessageStreamOptions) (*MessageStream, error)

Create a new Message Stream from an individual io.Reader and io.Writer.

func (*MessageStream) Close 

func (ms *MessageStream) Close()

Terminates any internal channels preventing sending and receiving on this Message Stream.

func (*MessageStream) ForwardMessage added in v0.2.0 

func (ms *MessageStream) ForwardMessage(msg *Message) error

Forward an existing Message. This is useful in a situation where multiple Message Streams are being used and a received Message needs to be passed to a different Message Stream.

Returns an error if it fails to write data to the underlying `io.Writer` or generate a nonce.

func (*MessageStream) GetConnection added in v0.6.1 

func (ms *MessageStream) GetConnection() net.Conn

Returns the underlying `net.Conn` if the Message Stream was created from one. nil otherwise.

func (*MessageStream) GetRecipientPublicKey added in v0.5.1 

func (ms *MessageStream) GetRecipientPublicKey() *rsa.PublicKey

Returns the RSA Public Key that was negotiate from the other end of the Message Stream if encryption was used. The key is nil if no Public Key was sent.

func (*MessageStream) On added in v0.7.0 

func (ms *MessageStream) On(msgType MessageType, callback func(*Message))

Creates a callback to handle Messages of a specific Message Type. When a Message of this type is received the callback will be executed and pass the received Message. Messages that are to be consumed in this way will NOT end up at the Receiver.

func (*MessageStream) OnOne added in v0.7.0 

func (ms *MessageStream) OnOne(msgType MessageType, callback func(*Message))

Creates a single-use callback to handle one Message of a specific Message Type. When a Message of this type is received the callback will be executed and pass the received Message. The callback will then be discarded from the call list.

func (*MessageStream) Read added in v0.7.0 

func (ms *MessageStream) Read(msgType MessageType) <-chan *Message

Returns a channel that will only read the specified Message Type. This will prevent this Message Type being received at the Receiver, however, you can create multiple readers of this Message Type still.

func (*MessageStream) ReadOne added in v0.7.0 

func (ms *MessageStream) ReadOne(msgType MessageType) *Message

Reads one specific Message of the given Message Type. This call blocks this goroutine until this Message Type is received. Other messages can still be received and processed in other goroutines.

func (*MessageStream) Receiver 

func (ms *MessageStream) Receiver() <-chan *Message

Returns a channel where incoming Messages can be received.

func (*MessageStream) SendMessage 

func (ms *MessageStream) SendMessage(t MessageType, metadata map[string]any, payload any, proxies ...string) error

Sends a Message on the io.Writer portion of the Message Stream.

Returns an error if it fails serialise the metadata or payload, write data to the underlying `io.Writer` or generate a nonce.

If proxying is enabled, the Message will be proxied through the designated addresses if they support Message Streams

type MessageStreamListener added in v0.6.0 

type MessageStreamListener struct {
	// contains filtered or unexported fields
}

Represents a server capable of accepting Message Stream connections

func Listen added in v0.6.0 

func Listen(addr string, opts *MessageStreamOptions) (*MessageStreamListener, error)

Creates a new Message Stream Server. The server will accept Message Stream connections and use `opts` when treating new incoming connections

func (*MessageStreamListener) Accept added in v0.6.0 

func (listener *MessageStreamListener) Accept() (*MessageStream, error)

Accepts a new Message Stream connection. This function blocks until a connection is accepted

func (*MessageStreamListener) Close added in v0.6.0 

func (listener *MessageStreamListener) Close() error

Closes the underlying `net.Listener` and prevents accepting anymore Message Streams on this server

type MessageStreamOptions added in v0.6.0 

type MessageStreamOptions struct {
	// Enables the use of RSA keys to perform Message encryption
	UseAsymmetricEncryption bool

	// RSA Private Key used for signing Messages and decrypting incoming Messages
	PrivateKey *rsa.PrivateKey

	// RSA Public Key to be sent to the other side of the Stream to be used for encrypting Messages that only this side of the stream can decrypt
	PublicKey *rsa.PublicKey

	// An identifier for the Message Stream, intended to be used for Logging correlation. It is not use in the communications protocol
	ID string

	// A structured logger for logging the loggy things
	Logger *slog.Logger

	// A timeout for sending and receiving public keys during key exchange
	KeyExchangeTimeout time.Duration

	// A timeout for sending and receiving Messages post key exchange
	MessageExchangeTimeout time.Duration

	// Forwards the given logger into underlying libraries and structures to produce even more loggy things for additional logginess
	DeepLogging bool

	// Enable Message Proxying
	AllowProxying bool
}

Configuration options for creating and running a Message Stream

func NewMessageStreamOptions added in v0.6.0 

func NewMessageStreamOptions() *MessageStreamOptions

Creates a new configuration with default values for the Message Stream. This will be used if `nil` is passed during the construction of a new Message Stream

type MessageType 

type MessageType string

Represents a Message Type.

Source Files

View all Source files

Directories

Path Synopsis
examples
chat-client command
chat-server command

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.